CVE Database

109287+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.

Filter: All CRITICAL HIGH MEDIUM LOW CISA KEV
Sort: Newest CVSS EPSS
CVE-2026-7255
6.5 MEDIUM

** UNSUPPORTED WHEN ASSIGNED ** An improper restriction of excessive authentication attempts vulnerability in the web management interface of Zyxel WRE6505 v2 firmware version V1.00(ABDV.3)C0 …

May 12, 2026
CVE-2026-45430
7.1 HIGH

The Salesforce module before 1.x-1.0.1 for Backdrop CMS does not properly use a random state parameter to protect the authorization flow against CSRF attacks.

May 12, 2026
CVE-2026-40137
6.1 MEDIUM

SAP TAF_APPLAUNCHER within Business Server Pages allows an unauthenticated attacker to craft malicious links that, when clicked by a victim, redirects them to attacker?controlled sites, …

May 12, 2026
CVE-2026-40136
4.3 MEDIUM

SAP Financial Consolidation allows an authenticated attacker to disconnect other users by terminating their sessions temporarily preventing access. However, the application itself cannot be compromised …

May 12, 2026
CVE-2026-40135
6.5 MEDIUM

An OS Command Injection vulnerability exists in the SAP NetWeaver Application Server for ABAP and ABAP Platform that allows an authenticated attacker with administrative access …

May 12, 2026
CVE-2026-40134
4.3 MEDIUM

Due to insufficient authorization checks in the SAP Incentive and Commission Management application, authenticated users could invoke a remote-enabled function module to perform table update …

May 12, 2026
CVE-2026-40133
6.3 MEDIUM

Due to missing authorization check in SAP S/4HANA Condition Maintenance, an authenticated attacker could gain unauthorized access to view and modify condition table records, resulting …

May 12, 2026
CVE-2026-40132
5.4 MEDIUM

Due to missing authorization check in SAP Strategic Enterprise Management (Scorecard Wizard in Business Server Pages), an authenticated attacker could access information that they are …

May 12, 2026
CVE-2026-40131
3.4 LOW

SQL injection vulnerability exists in @sap/hdi-deploy package, where SQL queries are dynamically constructed using user input without proper parameterization or prepared statements. Successful exploitation could …

May 12, 2026
CVE-2026-40129
4.3 MEDIUM

Due to a Code Injection vulnerability in SAP Application Server ABAP for SAP NetWeaver and ABAP Platform, an authenticated attacker could send specially crafted inputs …

May 12, 2026
CVE-2026-34263
9.6 CRITICAL

Due to improper Spring Security configuration, SAP Commerce Cloud allows an unauthenticated user to perform malicious input injection, resulting in arbitrary server-side code execution, leading …

May 12, 2026
CVE-2026-34260
9.6 CRITICAL

SAP S/4HANA (SAP Enterprise Search for ABAP) contains a SQL injection vulnerability that allows an authenticated attacker to inject malicious SQL statements through user-controlled input. …

May 12, 2026
CVE-2026-34259
8.2 HIGH

Due to an OS Command Execution vulnerability in SAP Forecasting & Replenishment, an authenticated attacker with administrative authorizations could abuse a non-remote-enabled function to execute …

May 12, 2026
CVE-2026-34258
4.7 MEDIUM

SAPUI5 (Search UI) allows an unauthenticated attacker to manipulate specific URL parameters on the Search UI to include malicious content. Successful exploitation may mislead victim …

May 12, 2026
CVE-2026-27682
4.7 MEDIUM

Due to a reflected cross-site scripting (XSS) vulnerability in SAP NetWeaver Application Server ABAP (Applications based on Business Server Pages), an unauthenticated attacker could craft …

May 12, 2026
CVE-2026-0502
5.4 MEDIUM

Due to insufficient CSRF protection in SAP BusinessObjects Business Intelligence Platform ,an authenticated user could be tricked by an attacker to send unintended requests to …

May 12, 2026
CVE-2026-45393
9.8 CRITICAL

Reserved. Details will be published at disclosure.

May 12, 2026
CVE-2026-45392
9.8 CRITICAL

Reserved. Details will be published at disclosure.

May 12, 2026
CVE-2026-45391
9.8 CRITICAL

Reserved. Details will be published at disclosure.

May 12, 2026
CVE-2026-45362
3.2 LOW

Sangoma Switchvox before 8.4 places cleartext SIP authentication credentials in a backup file.

May 12, 2026
CVE-2026-45321
9.6 CRITICAL KEV

On 2026-05-11, between approximately 19:20 and 19:26 UTC, 84 malicious versions across 42 @tanstack/* packages were published to the npm registry. The publishes were authenticated …

May 12, 2026
CVE-2026-8349
4.3 MEDIUM

A flaw has been found in omec-project amf up to 2.1.1. This vulnerability affects unknown code of the component NGAP Message Handler. Executing a manipulation …

May 12, 2026
CVE-2026-8346
6.3 MEDIUM

A vulnerability was detected in D-Link DIR-816 1.10CNB05_R1B011D88210. This affects the function portForward. Performing a manipulation of the argument ip_address results in command injection. The …

May 12, 2026
CVE-2026-8345
6.3 MEDIUM

A security vulnerability has been detected in D-Link DIR-816 1.10CNB05_R1B011D88210. Affected by this issue is the function sub_445E7C of the file /goform/singlePortForward. Such manipulation of …

May 11, 2026
CVE-2026-43914
7.3 HIGH

Vaultwarden is a Bitwarden-compatible server written in Rust. Prior to 1.35.4, there is a security vulnerability in Vaultwarden that allows bypassing the login brute-force protection …

May 11, 2026
CVE-2026-43913
8.1 HIGH

Vaultwarden is a Bitwarden-compatible server written in Rust. Prior to 1.35.5, Vaultwarden allows an unconfirmed organization owner to purge the entire organization vault. The organization …

May 11, 2026
CVE-2026-43912
8.7 HIGH

Vaultwarden is a Bitwarden-compatible server written in Rust. Prior to 1.35.5, Vaultwarden does not enforce that a groups_users.users_organizations_uuid entry belongs to the same organization as …

May 11, 2026
CVE-2026-43911
6.8 MEDIUM

Vaultwarden is a Bitwarden-compatible server written in Rust. Prior to 1.35.5, refresh tokens are not invalidated when the user's security_stamp is rotated by some security-sensitive …

May 11, 2026
CVE-2026-43901
6.8 MEDIUM

Wireshark MCP is an MCP Server that turns tshark into a structured analysis interface, then layers in optional Wireshark suite utilities. In 1.1.5 and earlier, …

May 11, 2026
CVE-2026-43900
9.3 CRITICAL

DeepChat is an open-source artificial intelligence agent platform that unifies models, tools, and agents. Prior to v1.0.4-beta.1, a Cross-Site Scripting (XSS) vulnerability exists due to …

May 11, 2026
CVE-2026-43899
9.6 CRITICAL

DeepChat is an open-source artificial intelligence agent platform that unifies models, tools, and agents. Prior to v1.0.4-beta.1, An incomplete mitigation for CVE-2025-55733 leaves DeepChat vulnerable …

May 11, 2026
CVE-2026-42554

Fiber is a web framework for Go. Prior to 2.52.12 and 3.1.0, Cross-Site Scripting vulnerability in Go Fiber allows a remote attacker to inject arbitrary …

May 11, 2026
CVE-2026-34963
8.4 HIGH

barebox version prior to 2026.04.0 contains multiple memory-safety vulnerabilities in the EFI PE loader in efi/loader/pe.c where integer overflow in virtual image size computation using …

May 11, 2026
CVE-2026-34962
6.2 MEDIUM

barebox version prior to 2026.04.0 contains a denial-of-service vulnerability in ext4 directory parsing in fs/ext4/ext4_common.c where the ext4fs_iterate_dir() function fails to validate that directory entry …

May 11, 2026
CVE-2026-8344
6.3 MEDIUM

A weakness has been identified in D-Link DIR-816 1.10CNB05_R1B011D88210. Affected by this vulnerability is the function sub_445E7C of the file /goform/formDMZ.cgi. This manipulation causes command …

May 11, 2026
CVE-2026-7010
6.5 MEDIUM

HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP request lines or control field header values. The unvalidated inputs are the method …

May 11, 2026
CVE-2026-44695
5.8 MEDIUM

Outline is a service that allows for collaborative documentation. Prior to 1.7.1, the Slack integration callback for GET /auth/slack.post accepts an unsigned, session-independent OAuth state …

May 11, 2026
CVE-2026-43897

Link Preview JS extracts web links information. Prior to 4.0.1, the library did not check for IPv6 loopback attacks. There was also a DNS attack, …

May 11, 2026
CVE-2026-43893
8.2 HIGH

exiftool-vendored provides cross-platform Node.js access to ExifTool. Prior to 35.19.0, exiftool-vendored starts ExifTool in -stay_open True -@ - mode, where arguments are read from stdin …

May 11, 2026
CVE-2026-43890
7.7 HIGH

Outline is a service that allows for collaborative documentation. From 0.84.0 to 1.7.0, the subscriptions.create API endpoint in server/routes/api/subscriptions/subscriptions.ts exhibits a broken authorization pattern. When …

May 11, 2026
CVE-2026-43889
6.5 MEDIUM

Outline is a service that allows for collaborative documentation. Prior to 1.7.0, the shares.create API accepts both collectionId and documentId simultaneously and, when published=false, only …

May 11, 2026
CVE-2026-43888
8.7 HIGH

Outline is a service that allows for collaborative documentation. Prior to 1.7.0, ZipHelper.extract computes the extraction path for each entry by passing a full filesystem …

May 11, 2026
CVE-2026-43887
7.3 HIGH

Outline is a service that allows for collaborative documentation. From 0.84.0 to 1.6.1, the Outline comment section permits users to mention other users; however, the …

May 11, 2026
CVE-2026-43886
8.2 HIGH

Outline is a service that allows for collaborative documentation. From 0.84.0 to 1.6.1, a logic error in OAuthInterface.validateScope() uses Array.some() to validate requested OAuth scopes, …

May 11, 2026
CVE-2026-43885

WWBN AVideo is an open source video platform. In versions up to and including 29.0, an unauthenticated user can read APISecret from objects/plugins.json.php and use …

May 11, 2026
CVE-2026-43884
7.7 HIGH

WWBN AVideo is an open source video platform. In versions up to and including 29.0, two endpoints (plugin/AI/receiveAsync.json.php and objects/EpgParser.php) in AVideo call isSSRFSafeURL() to …

May 11, 2026
CVE-2026-43883
4.2 MEDIUM

WWBN AVideo is an open source video platform. In versions up to and including 29.0, plugin/PayPalYPT/agreementCancel.json.php cancels a PayPal billing agreement using an attacker-supplied agreement …

May 11, 2026
CVE-2026-43882
4.3 MEDIUM

WWBN AVideo is an open source video platform. In versions up to and including 29.0, the unauthenticated plugin/Scheduler/downloadICS.php endpoint passes attacker-controlled title, description, and joinURL …

May 11, 2026
CVE-2026-43881
5.3 MEDIUM

WWBN AVideo is an open source video platform. In versions up to and including 29.0, objects/users.json.php exposes two unauthenticated paths that disclose the full set …

May 11, 2026
CVE-2026-43880
5.3 MEDIUM

WWBN AVideo is an open source video platform. In versions up to and including 29.0, objects/sendEmail.json.php exposes two branches depending on whether contactForm=1 is submitted. …

May 11, 2026

Scan your infrastructure for known CVEs

Free website and port scanning — find vulnerabilities before attackers do.